aws-sdk-fms 1.66.0 → 1.67.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-fms/client.rb +1 -1
- data/lib/aws-sdk-fms/plugins/endpoints.rb +1 -0
- data/lib/aws-sdk-fms.rb +1 -1
- data/sig/client.rbs +635 -0
- data/sig/errors.rbs +34 -0
- data/sig/resource.rbs +80 -0
- data/sig/types.rbs +1128 -0
- data/sig/waiters.rbs +13 -0
- metadata +13 -8
data/sig/types.rbs
ADDED
|
@@ -0,0 +1,1128 @@
|
|
|
1
|
+
# WARNING ABOUT GENERATED CODE
|
|
2
|
+
#
|
|
3
|
+
# This file is generated. See the contributing guide for more information:
|
|
4
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
|
5
|
+
#
|
|
6
|
+
# WARNING ABOUT GENERATED CODE
|
|
7
|
+
|
|
8
|
+
module Aws::FMS
|
|
9
|
+
module Types
|
|
10
|
+
|
|
11
|
+
class AccountScope
|
|
12
|
+
attr_accessor accounts: ::Array[::String]
|
|
13
|
+
attr_accessor all_accounts_enabled: bool
|
|
14
|
+
attr_accessor exclude_specified_accounts: bool
|
|
15
|
+
SENSITIVE: []
|
|
16
|
+
end
|
|
17
|
+
|
|
18
|
+
class ActionTarget
|
|
19
|
+
attr_accessor resource_id: ::String
|
|
20
|
+
attr_accessor description: ::String
|
|
21
|
+
SENSITIVE: []
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
class AdminAccountSummary
|
|
25
|
+
attr_accessor admin_account: ::String
|
|
26
|
+
attr_accessor default_admin: bool
|
|
27
|
+
attr_accessor status: ("ONBOARDING" | "ONBOARDING_COMPLETE" | "OFFBOARDING" | "OFFBOARDING_COMPLETE")
|
|
28
|
+
SENSITIVE: []
|
|
29
|
+
end
|
|
30
|
+
|
|
31
|
+
class AdminScope
|
|
32
|
+
attr_accessor account_scope: Types::AccountScope
|
|
33
|
+
attr_accessor organizational_unit_scope: Types::OrganizationalUnitScope
|
|
34
|
+
attr_accessor region_scope: Types::RegionScope
|
|
35
|
+
attr_accessor policy_type_scope: Types::PolicyTypeScope
|
|
36
|
+
SENSITIVE: []
|
|
37
|
+
end
|
|
38
|
+
|
|
39
|
+
class App
|
|
40
|
+
attr_accessor app_name: ::String
|
|
41
|
+
attr_accessor protocol: ::String
|
|
42
|
+
attr_accessor port: ::Integer
|
|
43
|
+
SENSITIVE: []
|
|
44
|
+
end
|
|
45
|
+
|
|
46
|
+
class AppsListData
|
|
47
|
+
attr_accessor list_id: ::String
|
|
48
|
+
attr_accessor list_name: ::String
|
|
49
|
+
attr_accessor list_update_token: ::String
|
|
50
|
+
attr_accessor create_time: ::Time
|
|
51
|
+
attr_accessor last_update_time: ::Time
|
|
52
|
+
attr_accessor apps_list: ::Array[Types::App]
|
|
53
|
+
attr_accessor previous_apps_list: ::Hash[::String, ::Array[Types::App]]
|
|
54
|
+
SENSITIVE: []
|
|
55
|
+
end
|
|
56
|
+
|
|
57
|
+
class AppsListDataSummary
|
|
58
|
+
attr_accessor list_arn: ::String
|
|
59
|
+
attr_accessor list_id: ::String
|
|
60
|
+
attr_accessor list_name: ::String
|
|
61
|
+
attr_accessor apps_list: ::Array[Types::App]
|
|
62
|
+
SENSITIVE: []
|
|
63
|
+
end
|
|
64
|
+
|
|
65
|
+
class AssociateAdminAccountRequest
|
|
66
|
+
attr_accessor admin_account: ::String
|
|
67
|
+
SENSITIVE: []
|
|
68
|
+
end
|
|
69
|
+
|
|
70
|
+
class AssociateThirdPartyFirewallRequest
|
|
71
|
+
attr_accessor third_party_firewall: ("PALO_ALTO_NETWORKS_CLOUD_NGFW" | "FORTIGATE_CLOUD_NATIVE_FIREWALL")
|
|
72
|
+
SENSITIVE: []
|
|
73
|
+
end
|
|
74
|
+
|
|
75
|
+
class AssociateThirdPartyFirewallResponse
|
|
76
|
+
attr_accessor third_party_firewall_status: ("ONBOARDING" | "ONBOARD_COMPLETE" | "OFFBOARDING" | "OFFBOARD_COMPLETE" | "NOT_EXIST")
|
|
77
|
+
SENSITIVE: []
|
|
78
|
+
end
|
|
79
|
+
|
|
80
|
+
class AwsEc2InstanceViolation
|
|
81
|
+
attr_accessor violation_target: ::String
|
|
82
|
+
attr_accessor aws_ec2_network_interface_violations: ::Array[Types::AwsEc2NetworkInterfaceViolation]
|
|
83
|
+
SENSITIVE: []
|
|
84
|
+
end
|
|
85
|
+
|
|
86
|
+
class AwsEc2NetworkInterfaceViolation
|
|
87
|
+
attr_accessor violation_target: ::String
|
|
88
|
+
attr_accessor violating_security_groups: ::Array[::String]
|
|
89
|
+
SENSITIVE: []
|
|
90
|
+
end
|
|
91
|
+
|
|
92
|
+
class AwsVPCSecurityGroupViolation
|
|
93
|
+
attr_accessor violation_target: ::String
|
|
94
|
+
attr_accessor violation_target_description: ::String
|
|
95
|
+
attr_accessor partial_matches: ::Array[Types::PartialMatch]
|
|
96
|
+
attr_accessor possible_security_group_remediation_actions: ::Array[Types::SecurityGroupRemediationAction]
|
|
97
|
+
SENSITIVE: []
|
|
98
|
+
end
|
|
99
|
+
|
|
100
|
+
class BatchAssociateResourceRequest
|
|
101
|
+
attr_accessor resource_set_identifier: ::String
|
|
102
|
+
attr_accessor items: ::Array[::String]
|
|
103
|
+
SENSITIVE: []
|
|
104
|
+
end
|
|
105
|
+
|
|
106
|
+
class BatchAssociateResourceResponse
|
|
107
|
+
attr_accessor resource_set_identifier: ::String
|
|
108
|
+
attr_accessor failed_items: ::Array[Types::FailedItem]
|
|
109
|
+
SENSITIVE: []
|
|
110
|
+
end
|
|
111
|
+
|
|
112
|
+
class BatchDisassociateResourceRequest
|
|
113
|
+
attr_accessor resource_set_identifier: ::String
|
|
114
|
+
attr_accessor items: ::Array[::String]
|
|
115
|
+
SENSITIVE: []
|
|
116
|
+
end
|
|
117
|
+
|
|
118
|
+
class BatchDisassociateResourceResponse
|
|
119
|
+
attr_accessor resource_set_identifier: ::String
|
|
120
|
+
attr_accessor failed_items: ::Array[Types::FailedItem]
|
|
121
|
+
SENSITIVE: []
|
|
122
|
+
end
|
|
123
|
+
|
|
124
|
+
class ComplianceViolator
|
|
125
|
+
attr_accessor resource_id: ::String
|
|
126
|
+
attr_accessor violation_reason: ("WEB_ACL_MISSING_RULE_GROUP" | "RESOURCE_MISSING_WEB_ACL" | "RESOURCE_INCORRECT_WEB_ACL" | "RESOURCE_MISSING_SHIELD_PROTECTION" | "RESOURCE_MISSING_WEB_ACL_OR_SHIELD_PROTECTION" | "RESOURCE_MISSING_SECURITY_GROUP" | "RESOURCE_VIOLATES_AUDIT_SECURITY_GROUP" | "SECURITY_GROUP_UNUSED" | "SECURITY_GROUP_REDUNDANT" | "FMS_CREATED_SECURITY_GROUP_EDITED" | "MISSING_FIREWALL" | "MISSING_FIREWALL_SUBNET_IN_AZ" | "MISSING_EXPECTED_ROUTE_TABLE" | "NETWORK_FIREWALL_POLICY_MODIFIED" | "FIREWALL_SUBNET_IS_OUT_OF_SCOPE" | "INTERNET_GATEWAY_MISSING_EXPECTED_ROUTE" | "FIREWALL_SUBNET_MISSING_EXPECTED_ROUTE" | "UNEXPECTED_FIREWALL_ROUTES" | "UNEXPECTED_TARGET_GATEWAY_ROUTES" | "TRAFFIC_INSPECTION_CROSSES_AZ_BOUNDARY" | "INVALID_ROUTE_CONFIGURATION" | "MISSING_TARGET_GATEWAY" | "INTERNET_TRAFFIC_NOT_INSPECTED" | "BLACK_HOLE_ROUTE_DETECTED" | "BLACK_HOLE_ROUTE_DETECTED_IN_FIREWALL_SUBNET" | "RESOURCE_MISSING_DNS_FIREWALL" | "ROUTE_HAS_OUT_OF_SCOPE_ENDPOINT" | "FIREWALL_SUBNET_MISSING_VPCE_ENDPOINT")
|
|
127
|
+
attr_accessor resource_type: ::String
|
|
128
|
+
attr_accessor metadata: ::Hash[::String, ::String]
|
|
129
|
+
SENSITIVE: []
|
|
130
|
+
end
|
|
131
|
+
|
|
132
|
+
class DeleteAppsListRequest
|
|
133
|
+
attr_accessor list_id: ::String
|
|
134
|
+
SENSITIVE: []
|
|
135
|
+
end
|
|
136
|
+
|
|
137
|
+
class DeleteNotificationChannelRequest < Aws::EmptyStructure
|
|
138
|
+
end
|
|
139
|
+
|
|
140
|
+
class DeletePolicyRequest
|
|
141
|
+
attr_accessor policy_id: ::String
|
|
142
|
+
attr_accessor delete_all_policy_resources: bool
|
|
143
|
+
SENSITIVE: []
|
|
144
|
+
end
|
|
145
|
+
|
|
146
|
+
class DeleteProtocolsListRequest
|
|
147
|
+
attr_accessor list_id: ::String
|
|
148
|
+
SENSITIVE: []
|
|
149
|
+
end
|
|
150
|
+
|
|
151
|
+
class DeleteResourceSetRequest
|
|
152
|
+
attr_accessor identifier: ::String
|
|
153
|
+
SENSITIVE: []
|
|
154
|
+
end
|
|
155
|
+
|
|
156
|
+
class DisassociateAdminAccountRequest < Aws::EmptyStructure
|
|
157
|
+
end
|
|
158
|
+
|
|
159
|
+
class DisassociateThirdPartyFirewallRequest
|
|
160
|
+
attr_accessor third_party_firewall: ("PALO_ALTO_NETWORKS_CLOUD_NGFW" | "FORTIGATE_CLOUD_NATIVE_FIREWALL")
|
|
161
|
+
SENSITIVE: []
|
|
162
|
+
end
|
|
163
|
+
|
|
164
|
+
class DisassociateThirdPartyFirewallResponse
|
|
165
|
+
attr_accessor third_party_firewall_status: ("ONBOARDING" | "ONBOARD_COMPLETE" | "OFFBOARDING" | "OFFBOARD_COMPLETE" | "NOT_EXIST")
|
|
166
|
+
SENSITIVE: []
|
|
167
|
+
end
|
|
168
|
+
|
|
169
|
+
class DiscoveredResource
|
|
170
|
+
attr_accessor uri: ::String
|
|
171
|
+
attr_accessor account_id: ::String
|
|
172
|
+
attr_accessor type: ::String
|
|
173
|
+
attr_accessor name: ::String
|
|
174
|
+
SENSITIVE: []
|
|
175
|
+
end
|
|
176
|
+
|
|
177
|
+
class DnsDuplicateRuleGroupViolation
|
|
178
|
+
attr_accessor violation_target: ::String
|
|
179
|
+
attr_accessor violation_target_description: ::String
|
|
180
|
+
SENSITIVE: []
|
|
181
|
+
end
|
|
182
|
+
|
|
183
|
+
class DnsRuleGroupLimitExceededViolation
|
|
184
|
+
attr_accessor violation_target: ::String
|
|
185
|
+
attr_accessor violation_target_description: ::String
|
|
186
|
+
attr_accessor number_of_rule_groups_already_associated: ::Integer
|
|
187
|
+
SENSITIVE: []
|
|
188
|
+
end
|
|
189
|
+
|
|
190
|
+
class DnsRuleGroupPriorityConflictViolation
|
|
191
|
+
attr_accessor violation_target: ::String
|
|
192
|
+
attr_accessor violation_target_description: ::String
|
|
193
|
+
attr_accessor conflicting_priority: ::Integer
|
|
194
|
+
attr_accessor conflicting_policy_id: ::String
|
|
195
|
+
attr_accessor unavailable_priorities: ::Array[::Integer]
|
|
196
|
+
SENSITIVE: []
|
|
197
|
+
end
|
|
198
|
+
|
|
199
|
+
class EC2AssociateRouteTableAction
|
|
200
|
+
attr_accessor description: ::String
|
|
201
|
+
attr_accessor route_table_id: Types::ActionTarget
|
|
202
|
+
attr_accessor subnet_id: Types::ActionTarget
|
|
203
|
+
attr_accessor gateway_id: Types::ActionTarget
|
|
204
|
+
SENSITIVE: []
|
|
205
|
+
end
|
|
206
|
+
|
|
207
|
+
class EC2CopyRouteTableAction
|
|
208
|
+
attr_accessor description: ::String
|
|
209
|
+
attr_accessor vpc_id: Types::ActionTarget
|
|
210
|
+
attr_accessor route_table_id: Types::ActionTarget
|
|
211
|
+
SENSITIVE: []
|
|
212
|
+
end
|
|
213
|
+
|
|
214
|
+
class EC2CreateRouteAction
|
|
215
|
+
attr_accessor description: ::String
|
|
216
|
+
attr_accessor destination_cidr_block: ::String
|
|
217
|
+
attr_accessor destination_prefix_list_id: ::String
|
|
218
|
+
attr_accessor destination_ipv_6_cidr_block: ::String
|
|
219
|
+
attr_accessor vpc_endpoint_id: Types::ActionTarget
|
|
220
|
+
attr_accessor gateway_id: Types::ActionTarget
|
|
221
|
+
attr_accessor route_table_id: Types::ActionTarget
|
|
222
|
+
SENSITIVE: []
|
|
223
|
+
end
|
|
224
|
+
|
|
225
|
+
class EC2CreateRouteTableAction
|
|
226
|
+
attr_accessor description: ::String
|
|
227
|
+
attr_accessor vpc_id: Types::ActionTarget
|
|
228
|
+
SENSITIVE: []
|
|
229
|
+
end
|
|
230
|
+
|
|
231
|
+
class EC2DeleteRouteAction
|
|
232
|
+
attr_accessor description: ::String
|
|
233
|
+
attr_accessor destination_cidr_block: ::String
|
|
234
|
+
attr_accessor destination_prefix_list_id: ::String
|
|
235
|
+
attr_accessor destination_ipv_6_cidr_block: ::String
|
|
236
|
+
attr_accessor route_table_id: Types::ActionTarget
|
|
237
|
+
SENSITIVE: []
|
|
238
|
+
end
|
|
239
|
+
|
|
240
|
+
class EC2ReplaceRouteAction
|
|
241
|
+
attr_accessor description: ::String
|
|
242
|
+
attr_accessor destination_cidr_block: ::String
|
|
243
|
+
attr_accessor destination_prefix_list_id: ::String
|
|
244
|
+
attr_accessor destination_ipv_6_cidr_block: ::String
|
|
245
|
+
attr_accessor gateway_id: Types::ActionTarget
|
|
246
|
+
attr_accessor route_table_id: Types::ActionTarget
|
|
247
|
+
SENSITIVE: []
|
|
248
|
+
end
|
|
249
|
+
|
|
250
|
+
class EC2ReplaceRouteTableAssociationAction
|
|
251
|
+
attr_accessor description: ::String
|
|
252
|
+
attr_accessor association_id: Types::ActionTarget
|
|
253
|
+
attr_accessor route_table_id: Types::ActionTarget
|
|
254
|
+
SENSITIVE: []
|
|
255
|
+
end
|
|
256
|
+
|
|
257
|
+
class EvaluationResult
|
|
258
|
+
attr_accessor compliance_status: ("COMPLIANT" | "NON_COMPLIANT")
|
|
259
|
+
attr_accessor violator_count: ::Integer
|
|
260
|
+
attr_accessor evaluation_limit_exceeded: bool
|
|
261
|
+
SENSITIVE: []
|
|
262
|
+
end
|
|
263
|
+
|
|
264
|
+
class ExpectedRoute
|
|
265
|
+
attr_accessor ip_v4_cidr: ::String
|
|
266
|
+
attr_accessor prefix_list_id: ::String
|
|
267
|
+
attr_accessor ip_v6_cidr: ::String
|
|
268
|
+
attr_accessor contributing_subnets: ::Array[::String]
|
|
269
|
+
attr_accessor allowed_targets: ::Array[::String]
|
|
270
|
+
attr_accessor route_table_id: ::String
|
|
271
|
+
SENSITIVE: []
|
|
272
|
+
end
|
|
273
|
+
|
|
274
|
+
class FMSPolicyUpdateFirewallCreationConfigAction
|
|
275
|
+
attr_accessor description: ::String
|
|
276
|
+
attr_accessor firewall_creation_config: ::String
|
|
277
|
+
SENSITIVE: []
|
|
278
|
+
end
|
|
279
|
+
|
|
280
|
+
class FailedItem
|
|
281
|
+
attr_accessor uri: ::String
|
|
282
|
+
attr_accessor reason: ("NOT_VALID_ARN" | "NOT_VALID_PARTITION" | "NOT_VALID_REGION" | "NOT_VALID_SERVICE" | "NOT_VALID_RESOURCE_TYPE" | "NOT_VALID_ACCOUNT_ID")
|
|
283
|
+
SENSITIVE: []
|
|
284
|
+
end
|
|
285
|
+
|
|
286
|
+
class FirewallSubnetIsOutOfScopeViolation
|
|
287
|
+
attr_accessor firewall_subnet_id: ::String
|
|
288
|
+
attr_accessor vpc_id: ::String
|
|
289
|
+
attr_accessor subnet_availability_zone: ::String
|
|
290
|
+
attr_accessor subnet_availability_zone_id: ::String
|
|
291
|
+
attr_accessor vpc_endpoint_id: ::String
|
|
292
|
+
SENSITIVE: []
|
|
293
|
+
end
|
|
294
|
+
|
|
295
|
+
class FirewallSubnetMissingVPCEndpointViolation
|
|
296
|
+
attr_accessor firewall_subnet_id: ::String
|
|
297
|
+
attr_accessor vpc_id: ::String
|
|
298
|
+
attr_accessor subnet_availability_zone: ::String
|
|
299
|
+
attr_accessor subnet_availability_zone_id: ::String
|
|
300
|
+
SENSITIVE: []
|
|
301
|
+
end
|
|
302
|
+
|
|
303
|
+
class GetAdminAccountRequest < Aws::EmptyStructure
|
|
304
|
+
end
|
|
305
|
+
|
|
306
|
+
class GetAdminAccountResponse
|
|
307
|
+
attr_accessor admin_account: ::String
|
|
308
|
+
attr_accessor role_status: ("READY" | "CREATING" | "PENDING_DELETION" | "DELETING" | "DELETED")
|
|
309
|
+
SENSITIVE: []
|
|
310
|
+
end
|
|
311
|
+
|
|
312
|
+
class GetAdminScopeRequest
|
|
313
|
+
attr_accessor admin_account: ::String
|
|
314
|
+
SENSITIVE: []
|
|
315
|
+
end
|
|
316
|
+
|
|
317
|
+
class GetAdminScopeResponse
|
|
318
|
+
attr_accessor admin_scope: Types::AdminScope
|
|
319
|
+
attr_accessor status: ("ONBOARDING" | "ONBOARDING_COMPLETE" | "OFFBOARDING" | "OFFBOARDING_COMPLETE")
|
|
320
|
+
SENSITIVE: []
|
|
321
|
+
end
|
|
322
|
+
|
|
323
|
+
class GetAppsListRequest
|
|
324
|
+
attr_accessor list_id: ::String
|
|
325
|
+
attr_accessor default_list: bool
|
|
326
|
+
SENSITIVE: []
|
|
327
|
+
end
|
|
328
|
+
|
|
329
|
+
class GetAppsListResponse
|
|
330
|
+
attr_accessor apps_list: Types::AppsListData
|
|
331
|
+
attr_accessor apps_list_arn: ::String
|
|
332
|
+
SENSITIVE: []
|
|
333
|
+
end
|
|
334
|
+
|
|
335
|
+
class GetComplianceDetailRequest
|
|
336
|
+
attr_accessor policy_id: ::String
|
|
337
|
+
attr_accessor member_account: ::String
|
|
338
|
+
SENSITIVE: []
|
|
339
|
+
end
|
|
340
|
+
|
|
341
|
+
class GetComplianceDetailResponse
|
|
342
|
+
attr_accessor policy_compliance_detail: Types::PolicyComplianceDetail
|
|
343
|
+
SENSITIVE: []
|
|
344
|
+
end
|
|
345
|
+
|
|
346
|
+
class GetNotificationChannelRequest < Aws::EmptyStructure
|
|
347
|
+
end
|
|
348
|
+
|
|
349
|
+
class GetNotificationChannelResponse
|
|
350
|
+
attr_accessor sns_topic_arn: ::String
|
|
351
|
+
attr_accessor sns_role_name: ::String
|
|
352
|
+
SENSITIVE: []
|
|
353
|
+
end
|
|
354
|
+
|
|
355
|
+
class GetPolicyRequest
|
|
356
|
+
attr_accessor policy_id: ::String
|
|
357
|
+
SENSITIVE: []
|
|
358
|
+
end
|
|
359
|
+
|
|
360
|
+
class GetPolicyResponse
|
|
361
|
+
attr_accessor policy: Types::Policy
|
|
362
|
+
attr_accessor policy_arn: ::String
|
|
363
|
+
SENSITIVE: []
|
|
364
|
+
end
|
|
365
|
+
|
|
366
|
+
class GetProtectionStatusRequest
|
|
367
|
+
attr_accessor policy_id: ::String
|
|
368
|
+
attr_accessor member_account_id: ::String
|
|
369
|
+
attr_accessor start_time: ::Time
|
|
370
|
+
attr_accessor end_time: ::Time
|
|
371
|
+
attr_accessor next_token: ::String
|
|
372
|
+
attr_accessor max_results: ::Integer
|
|
373
|
+
SENSITIVE: []
|
|
374
|
+
end
|
|
375
|
+
|
|
376
|
+
class GetProtectionStatusResponse
|
|
377
|
+
attr_accessor admin_account_id: ::String
|
|
378
|
+
attr_accessor service_type: ("WAF" | "WAFV2" | "SHIELD_ADVANCED" | "SECURITY_GROUPS_COMMON" | "SECURITY_GROUPS_CONTENT_AUDIT" | "SECURITY_GROUPS_USAGE_AUDIT" | "NETWORK_FIREWALL" | "DNS_FIREWALL" | "THIRD_PARTY_FIREWALL" | "IMPORT_NETWORK_FIREWALL")
|
|
379
|
+
attr_accessor data: ::String
|
|
380
|
+
attr_accessor next_token: ::String
|
|
381
|
+
SENSITIVE: []
|
|
382
|
+
end
|
|
383
|
+
|
|
384
|
+
class GetProtocolsListRequest
|
|
385
|
+
attr_accessor list_id: ::String
|
|
386
|
+
attr_accessor default_list: bool
|
|
387
|
+
SENSITIVE: []
|
|
388
|
+
end
|
|
389
|
+
|
|
390
|
+
class GetProtocolsListResponse
|
|
391
|
+
attr_accessor protocols_list: Types::ProtocolsListData
|
|
392
|
+
attr_accessor protocols_list_arn: ::String
|
|
393
|
+
SENSITIVE: []
|
|
394
|
+
end
|
|
395
|
+
|
|
396
|
+
class GetResourceSetRequest
|
|
397
|
+
attr_accessor identifier: ::String
|
|
398
|
+
SENSITIVE: []
|
|
399
|
+
end
|
|
400
|
+
|
|
401
|
+
class GetResourceSetResponse
|
|
402
|
+
attr_accessor resource_set: Types::ResourceSet
|
|
403
|
+
attr_accessor resource_set_arn: ::String
|
|
404
|
+
SENSITIVE: []
|
|
405
|
+
end
|
|
406
|
+
|
|
407
|
+
class GetThirdPartyFirewallAssociationStatusRequest
|
|
408
|
+
attr_accessor third_party_firewall: ("PALO_ALTO_NETWORKS_CLOUD_NGFW" | "FORTIGATE_CLOUD_NATIVE_FIREWALL")
|
|
409
|
+
SENSITIVE: []
|
|
410
|
+
end
|
|
411
|
+
|
|
412
|
+
class GetThirdPartyFirewallAssociationStatusResponse
|
|
413
|
+
attr_accessor third_party_firewall_status: ("ONBOARDING" | "ONBOARD_COMPLETE" | "OFFBOARDING" | "OFFBOARD_COMPLETE" | "NOT_EXIST")
|
|
414
|
+
attr_accessor marketplace_onboarding_status: ("NO_SUBSCRIPTION" | "NOT_COMPLETE" | "COMPLETE")
|
|
415
|
+
SENSITIVE: []
|
|
416
|
+
end
|
|
417
|
+
|
|
418
|
+
class GetViolationDetailsRequest
|
|
419
|
+
attr_accessor policy_id: ::String
|
|
420
|
+
attr_accessor member_account: ::String
|
|
421
|
+
attr_accessor resource_id: ::String
|
|
422
|
+
attr_accessor resource_type: ::String
|
|
423
|
+
SENSITIVE: []
|
|
424
|
+
end
|
|
425
|
+
|
|
426
|
+
class GetViolationDetailsResponse
|
|
427
|
+
attr_accessor violation_detail: Types::ViolationDetail
|
|
428
|
+
SENSITIVE: []
|
|
429
|
+
end
|
|
430
|
+
|
|
431
|
+
class InternalErrorException
|
|
432
|
+
attr_accessor message: ::String
|
|
433
|
+
SENSITIVE: []
|
|
434
|
+
end
|
|
435
|
+
|
|
436
|
+
class InvalidInputException
|
|
437
|
+
attr_accessor message: ::String
|
|
438
|
+
SENSITIVE: []
|
|
439
|
+
end
|
|
440
|
+
|
|
441
|
+
class InvalidOperationException
|
|
442
|
+
attr_accessor message: ::String
|
|
443
|
+
SENSITIVE: []
|
|
444
|
+
end
|
|
445
|
+
|
|
446
|
+
class InvalidTypeException
|
|
447
|
+
attr_accessor message: ::String
|
|
448
|
+
SENSITIVE: []
|
|
449
|
+
end
|
|
450
|
+
|
|
451
|
+
class LimitExceededException
|
|
452
|
+
attr_accessor message: ::String
|
|
453
|
+
SENSITIVE: []
|
|
454
|
+
end
|
|
455
|
+
|
|
456
|
+
class ListAdminAccountsForOrganizationRequest
|
|
457
|
+
attr_accessor next_token: ::String
|
|
458
|
+
attr_accessor max_results: ::Integer
|
|
459
|
+
SENSITIVE: []
|
|
460
|
+
end
|
|
461
|
+
|
|
462
|
+
class ListAdminAccountsForOrganizationResponse
|
|
463
|
+
attr_accessor admin_accounts: ::Array[Types::AdminAccountSummary]
|
|
464
|
+
attr_accessor next_token: ::String
|
|
465
|
+
SENSITIVE: []
|
|
466
|
+
end
|
|
467
|
+
|
|
468
|
+
class ListAdminsManagingAccountRequest
|
|
469
|
+
attr_accessor next_token: ::String
|
|
470
|
+
attr_accessor max_results: ::Integer
|
|
471
|
+
SENSITIVE: []
|
|
472
|
+
end
|
|
473
|
+
|
|
474
|
+
class ListAdminsManagingAccountResponse
|
|
475
|
+
attr_accessor admin_accounts: ::Array[::String]
|
|
476
|
+
attr_accessor next_token: ::String
|
|
477
|
+
SENSITIVE: []
|
|
478
|
+
end
|
|
479
|
+
|
|
480
|
+
class ListAppsListsRequest
|
|
481
|
+
attr_accessor default_lists: bool
|
|
482
|
+
attr_accessor next_token: ::String
|
|
483
|
+
attr_accessor max_results: ::Integer
|
|
484
|
+
SENSITIVE: []
|
|
485
|
+
end
|
|
486
|
+
|
|
487
|
+
class ListAppsListsResponse
|
|
488
|
+
attr_accessor apps_lists: ::Array[Types::AppsListDataSummary]
|
|
489
|
+
attr_accessor next_token: ::String
|
|
490
|
+
SENSITIVE: []
|
|
491
|
+
end
|
|
492
|
+
|
|
493
|
+
class ListComplianceStatusRequest
|
|
494
|
+
attr_accessor policy_id: ::String
|
|
495
|
+
attr_accessor next_token: ::String
|
|
496
|
+
attr_accessor max_results: ::Integer
|
|
497
|
+
SENSITIVE: []
|
|
498
|
+
end
|
|
499
|
+
|
|
500
|
+
class ListComplianceStatusResponse
|
|
501
|
+
attr_accessor policy_compliance_status_list: ::Array[Types::PolicyComplianceStatus]
|
|
502
|
+
attr_accessor next_token: ::String
|
|
503
|
+
SENSITIVE: []
|
|
504
|
+
end
|
|
505
|
+
|
|
506
|
+
class ListDiscoveredResourcesRequest
|
|
507
|
+
attr_accessor member_account_ids: ::Array[::String]
|
|
508
|
+
attr_accessor resource_type: ::String
|
|
509
|
+
attr_accessor max_results: ::Integer
|
|
510
|
+
attr_accessor next_token: ::String
|
|
511
|
+
SENSITIVE: []
|
|
512
|
+
end
|
|
513
|
+
|
|
514
|
+
class ListDiscoveredResourcesResponse
|
|
515
|
+
attr_accessor items: ::Array[Types::DiscoveredResource]
|
|
516
|
+
attr_accessor next_token: ::String
|
|
517
|
+
SENSITIVE: []
|
|
518
|
+
end
|
|
519
|
+
|
|
520
|
+
class ListMemberAccountsRequest
|
|
521
|
+
attr_accessor next_token: ::String
|
|
522
|
+
attr_accessor max_results: ::Integer
|
|
523
|
+
SENSITIVE: []
|
|
524
|
+
end
|
|
525
|
+
|
|
526
|
+
class ListMemberAccountsResponse
|
|
527
|
+
attr_accessor member_accounts: ::Array[::String]
|
|
528
|
+
attr_accessor next_token: ::String
|
|
529
|
+
SENSITIVE: []
|
|
530
|
+
end
|
|
531
|
+
|
|
532
|
+
class ListPoliciesRequest
|
|
533
|
+
attr_accessor next_token: ::String
|
|
534
|
+
attr_accessor max_results: ::Integer
|
|
535
|
+
SENSITIVE: []
|
|
536
|
+
end
|
|
537
|
+
|
|
538
|
+
class ListPoliciesResponse
|
|
539
|
+
attr_accessor policy_list: ::Array[Types::PolicySummary]
|
|
540
|
+
attr_accessor next_token: ::String
|
|
541
|
+
SENSITIVE: []
|
|
542
|
+
end
|
|
543
|
+
|
|
544
|
+
class ListProtocolsListsRequest
|
|
545
|
+
attr_accessor default_lists: bool
|
|
546
|
+
attr_accessor next_token: ::String
|
|
547
|
+
attr_accessor max_results: ::Integer
|
|
548
|
+
SENSITIVE: []
|
|
549
|
+
end
|
|
550
|
+
|
|
551
|
+
class ListProtocolsListsResponse
|
|
552
|
+
attr_accessor protocols_lists: ::Array[Types::ProtocolsListDataSummary]
|
|
553
|
+
attr_accessor next_token: ::String
|
|
554
|
+
SENSITIVE: []
|
|
555
|
+
end
|
|
556
|
+
|
|
557
|
+
class ListResourceSetResourcesRequest
|
|
558
|
+
attr_accessor identifier: ::String
|
|
559
|
+
attr_accessor max_results: ::Integer
|
|
560
|
+
attr_accessor next_token: ::String
|
|
561
|
+
SENSITIVE: []
|
|
562
|
+
end
|
|
563
|
+
|
|
564
|
+
class ListResourceSetResourcesResponse
|
|
565
|
+
attr_accessor items: ::Array[Types::Resource]
|
|
566
|
+
attr_accessor next_token: ::String
|
|
567
|
+
SENSITIVE: []
|
|
568
|
+
end
|
|
569
|
+
|
|
570
|
+
class ListResourceSetsRequest
|
|
571
|
+
attr_accessor next_token: ::String
|
|
572
|
+
attr_accessor max_results: ::Integer
|
|
573
|
+
SENSITIVE: []
|
|
574
|
+
end
|
|
575
|
+
|
|
576
|
+
class ListResourceSetsResponse
|
|
577
|
+
attr_accessor resource_sets: ::Array[Types::ResourceSetSummary]
|
|
578
|
+
attr_accessor next_token: ::String
|
|
579
|
+
SENSITIVE: []
|
|
580
|
+
end
|
|
581
|
+
|
|
582
|
+
class ListTagsForResourceRequest
|
|
583
|
+
attr_accessor resource_arn: ::String
|
|
584
|
+
SENSITIVE: []
|
|
585
|
+
end
|
|
586
|
+
|
|
587
|
+
class ListTagsForResourceResponse
|
|
588
|
+
attr_accessor tag_list: ::Array[Types::Tag]
|
|
589
|
+
SENSITIVE: []
|
|
590
|
+
end
|
|
591
|
+
|
|
592
|
+
class ListThirdPartyFirewallFirewallPoliciesRequest
|
|
593
|
+
attr_accessor third_party_firewall: ("PALO_ALTO_NETWORKS_CLOUD_NGFW" | "FORTIGATE_CLOUD_NATIVE_FIREWALL")
|
|
594
|
+
attr_accessor next_token: ::String
|
|
595
|
+
attr_accessor max_results: ::Integer
|
|
596
|
+
SENSITIVE: []
|
|
597
|
+
end
|
|
598
|
+
|
|
599
|
+
class ListThirdPartyFirewallFirewallPoliciesResponse
|
|
600
|
+
attr_accessor third_party_firewall_firewall_policies: ::Array[Types::ThirdPartyFirewallFirewallPolicy]
|
|
601
|
+
attr_accessor next_token: ::String
|
|
602
|
+
SENSITIVE: []
|
|
603
|
+
end
|
|
604
|
+
|
|
605
|
+
class NetworkFirewallBlackHoleRouteDetectedViolation
|
|
606
|
+
attr_accessor violation_target: ::String
|
|
607
|
+
attr_accessor route_table_id: ::String
|
|
608
|
+
attr_accessor vpc_id: ::String
|
|
609
|
+
attr_accessor violating_routes: ::Array[Types::Route]
|
|
610
|
+
SENSITIVE: []
|
|
611
|
+
end
|
|
612
|
+
|
|
613
|
+
class NetworkFirewallInternetTrafficNotInspectedViolation
|
|
614
|
+
attr_accessor subnet_id: ::String
|
|
615
|
+
attr_accessor subnet_availability_zone: ::String
|
|
616
|
+
attr_accessor route_table_id: ::String
|
|
617
|
+
attr_accessor violating_routes: ::Array[Types::Route]
|
|
618
|
+
attr_accessor is_route_table_used_in_different_az: bool
|
|
619
|
+
attr_accessor current_firewall_subnet_route_table: ::String
|
|
620
|
+
attr_accessor expected_firewall_endpoint: ::String
|
|
621
|
+
attr_accessor firewall_subnet_id: ::String
|
|
622
|
+
attr_accessor expected_firewall_subnet_routes: ::Array[Types::ExpectedRoute]
|
|
623
|
+
attr_accessor actual_firewall_subnet_routes: ::Array[Types::Route]
|
|
624
|
+
attr_accessor internet_gateway_id: ::String
|
|
625
|
+
attr_accessor current_internet_gateway_route_table: ::String
|
|
626
|
+
attr_accessor expected_internet_gateway_routes: ::Array[Types::ExpectedRoute]
|
|
627
|
+
attr_accessor actual_internet_gateway_routes: ::Array[Types::Route]
|
|
628
|
+
attr_accessor vpc_id: ::String
|
|
629
|
+
SENSITIVE: []
|
|
630
|
+
end
|
|
631
|
+
|
|
632
|
+
class NetworkFirewallInvalidRouteConfigurationViolation
|
|
633
|
+
attr_accessor affected_subnets: ::Array[::String]
|
|
634
|
+
attr_accessor route_table_id: ::String
|
|
635
|
+
attr_accessor is_route_table_used_in_different_az: bool
|
|
636
|
+
attr_accessor violating_route: Types::Route
|
|
637
|
+
attr_accessor current_firewall_subnet_route_table: ::String
|
|
638
|
+
attr_accessor expected_firewall_endpoint: ::String
|
|
639
|
+
attr_accessor actual_firewall_endpoint: ::String
|
|
640
|
+
attr_accessor expected_firewall_subnet_id: ::String
|
|
641
|
+
attr_accessor actual_firewall_subnet_id: ::String
|
|
642
|
+
attr_accessor expected_firewall_subnet_routes: ::Array[Types::ExpectedRoute]
|
|
643
|
+
attr_accessor actual_firewall_subnet_routes: ::Array[Types::Route]
|
|
644
|
+
attr_accessor internet_gateway_id: ::String
|
|
645
|
+
attr_accessor current_internet_gateway_route_table: ::String
|
|
646
|
+
attr_accessor expected_internet_gateway_routes: ::Array[Types::ExpectedRoute]
|
|
647
|
+
attr_accessor actual_internet_gateway_routes: ::Array[Types::Route]
|
|
648
|
+
attr_accessor vpc_id: ::String
|
|
649
|
+
SENSITIVE: []
|
|
650
|
+
end
|
|
651
|
+
|
|
652
|
+
class NetworkFirewallMissingExpectedRTViolation
|
|
653
|
+
attr_accessor violation_target: ::String
|
|
654
|
+
attr_accessor vpc: ::String
|
|
655
|
+
attr_accessor availability_zone: ::String
|
|
656
|
+
attr_accessor current_route_table: ::String
|
|
657
|
+
attr_accessor expected_route_table: ::String
|
|
658
|
+
SENSITIVE: []
|
|
659
|
+
end
|
|
660
|
+
|
|
661
|
+
class NetworkFirewallMissingExpectedRoutesViolation
|
|
662
|
+
attr_accessor violation_target: ::String
|
|
663
|
+
attr_accessor expected_routes: ::Array[Types::ExpectedRoute]
|
|
664
|
+
attr_accessor vpc_id: ::String
|
|
665
|
+
SENSITIVE: []
|
|
666
|
+
end
|
|
667
|
+
|
|
668
|
+
class NetworkFirewallMissingFirewallViolation
|
|
669
|
+
attr_accessor violation_target: ::String
|
|
670
|
+
attr_accessor vpc: ::String
|
|
671
|
+
attr_accessor availability_zone: ::String
|
|
672
|
+
attr_accessor target_violation_reason: ::String
|
|
673
|
+
SENSITIVE: []
|
|
674
|
+
end
|
|
675
|
+
|
|
676
|
+
class NetworkFirewallMissingSubnetViolation
|
|
677
|
+
attr_accessor violation_target: ::String
|
|
678
|
+
attr_accessor vpc: ::String
|
|
679
|
+
attr_accessor availability_zone: ::String
|
|
680
|
+
attr_accessor target_violation_reason: ::String
|
|
681
|
+
SENSITIVE: []
|
|
682
|
+
end
|
|
683
|
+
|
|
684
|
+
class NetworkFirewallPolicy
|
|
685
|
+
attr_accessor firewall_deployment_model: ("CENTRALIZED" | "DISTRIBUTED")
|
|
686
|
+
SENSITIVE: []
|
|
687
|
+
end
|
|
688
|
+
|
|
689
|
+
class NetworkFirewallPolicyDescription
|
|
690
|
+
attr_accessor stateless_rule_groups: ::Array[Types::StatelessRuleGroup]
|
|
691
|
+
attr_accessor stateless_default_actions: ::Array[::String]
|
|
692
|
+
attr_accessor stateless_fragment_default_actions: ::Array[::String]
|
|
693
|
+
attr_accessor stateless_custom_actions: ::Array[::String]
|
|
694
|
+
attr_accessor stateful_rule_groups: ::Array[Types::StatefulRuleGroup]
|
|
695
|
+
attr_accessor stateful_default_actions: ::Array[::String]
|
|
696
|
+
attr_accessor stateful_engine_options: Types::StatefulEngineOptions
|
|
697
|
+
SENSITIVE: []
|
|
698
|
+
end
|
|
699
|
+
|
|
700
|
+
class NetworkFirewallPolicyModifiedViolation
|
|
701
|
+
attr_accessor violation_target: ::String
|
|
702
|
+
attr_accessor current_policy_description: Types::NetworkFirewallPolicyDescription
|
|
703
|
+
attr_accessor expected_policy_description: Types::NetworkFirewallPolicyDescription
|
|
704
|
+
SENSITIVE: []
|
|
705
|
+
end
|
|
706
|
+
|
|
707
|
+
class NetworkFirewallStatefulRuleGroupOverride
|
|
708
|
+
attr_accessor action: ("DROP_TO_ALERT")
|
|
709
|
+
SENSITIVE: []
|
|
710
|
+
end
|
|
711
|
+
|
|
712
|
+
class NetworkFirewallUnexpectedFirewallRoutesViolation
|
|
713
|
+
attr_accessor firewall_subnet_id: ::String
|
|
714
|
+
attr_accessor violating_routes: ::Array[Types::Route]
|
|
715
|
+
attr_accessor route_table_id: ::String
|
|
716
|
+
attr_accessor firewall_endpoint: ::String
|
|
717
|
+
attr_accessor vpc_id: ::String
|
|
718
|
+
SENSITIVE: []
|
|
719
|
+
end
|
|
720
|
+
|
|
721
|
+
class NetworkFirewallUnexpectedGatewayRoutesViolation
|
|
722
|
+
attr_accessor gateway_id: ::String
|
|
723
|
+
attr_accessor violating_routes: ::Array[Types::Route]
|
|
724
|
+
attr_accessor route_table_id: ::String
|
|
725
|
+
attr_accessor vpc_id: ::String
|
|
726
|
+
SENSITIVE: []
|
|
727
|
+
end
|
|
728
|
+
|
|
729
|
+
class OrganizationalUnitScope
|
|
730
|
+
attr_accessor organizational_units: ::Array[::String]
|
|
731
|
+
attr_accessor all_organizational_units_enabled: bool
|
|
732
|
+
attr_accessor exclude_specified_organizational_units: bool
|
|
733
|
+
SENSITIVE: []
|
|
734
|
+
end
|
|
735
|
+
|
|
736
|
+
class PartialMatch
|
|
737
|
+
attr_accessor reference: ::String
|
|
738
|
+
attr_accessor target_violation_reasons: ::Array[::String]
|
|
739
|
+
SENSITIVE: []
|
|
740
|
+
end
|
|
741
|
+
|
|
742
|
+
class Policy
|
|
743
|
+
attr_accessor policy_id: ::String
|
|
744
|
+
attr_accessor policy_name: ::String
|
|
745
|
+
attr_accessor policy_update_token: ::String
|
|
746
|
+
attr_accessor security_service_policy_data: Types::SecurityServicePolicyData
|
|
747
|
+
attr_accessor resource_type: ::String
|
|
748
|
+
attr_accessor resource_type_list: ::Array[::String]
|
|
749
|
+
attr_accessor resource_tags: ::Array[Types::ResourceTag]
|
|
750
|
+
attr_accessor exclude_resource_tags: bool
|
|
751
|
+
attr_accessor remediation_enabled: bool
|
|
752
|
+
attr_accessor delete_unused_fm_managed_resources: bool
|
|
753
|
+
attr_accessor include_map: ::Hash[("ACCOUNT" | "ORG_UNIT"), ::Array[::String]]
|
|
754
|
+
attr_accessor exclude_map: ::Hash[("ACCOUNT" | "ORG_UNIT"), ::Array[::String]]
|
|
755
|
+
attr_accessor resource_set_ids: ::Array[::String]
|
|
756
|
+
attr_accessor policy_description: ::String
|
|
757
|
+
attr_accessor policy_status: ("ACTIVE" | "OUT_OF_ADMIN_SCOPE")
|
|
758
|
+
SENSITIVE: []
|
|
759
|
+
end
|
|
760
|
+
|
|
761
|
+
class PolicyComplianceDetail
|
|
762
|
+
attr_accessor policy_owner: ::String
|
|
763
|
+
attr_accessor policy_id: ::String
|
|
764
|
+
attr_accessor member_account: ::String
|
|
765
|
+
attr_accessor violators: ::Array[Types::ComplianceViolator]
|
|
766
|
+
attr_accessor evaluation_limit_exceeded: bool
|
|
767
|
+
attr_accessor expired_at: ::Time
|
|
768
|
+
attr_accessor issue_info_map: ::Hash[("AWSCONFIG" | "AWSWAF" | "AWSSHIELD_ADVANCED" | "AWSVPC"), ::String]
|
|
769
|
+
SENSITIVE: []
|
|
770
|
+
end
|
|
771
|
+
|
|
772
|
+
class PolicyComplianceStatus
|
|
773
|
+
attr_accessor policy_owner: ::String
|
|
774
|
+
attr_accessor policy_id: ::String
|
|
775
|
+
attr_accessor policy_name: ::String
|
|
776
|
+
attr_accessor member_account: ::String
|
|
777
|
+
attr_accessor evaluation_results: ::Array[Types::EvaluationResult]
|
|
778
|
+
attr_accessor last_updated: ::Time
|
|
779
|
+
attr_accessor issue_info_map: ::Hash[("AWSCONFIG" | "AWSWAF" | "AWSSHIELD_ADVANCED" | "AWSVPC"), ::String]
|
|
780
|
+
SENSITIVE: []
|
|
781
|
+
end
|
|
782
|
+
|
|
783
|
+
class PolicyOption
|
|
784
|
+
attr_accessor network_firewall_policy: Types::NetworkFirewallPolicy
|
|
785
|
+
attr_accessor third_party_firewall_policy: Types::ThirdPartyFirewallPolicy
|
|
786
|
+
SENSITIVE: []
|
|
787
|
+
end
|
|
788
|
+
|
|
789
|
+
class PolicySummary
|
|
790
|
+
attr_accessor policy_arn: ::String
|
|
791
|
+
attr_accessor policy_id: ::String
|
|
792
|
+
attr_accessor policy_name: ::String
|
|
793
|
+
attr_accessor resource_type: ::String
|
|
794
|
+
attr_accessor security_service_type: ("WAF" | "WAFV2" | "SHIELD_ADVANCED" | "SECURITY_GROUPS_COMMON" | "SECURITY_GROUPS_CONTENT_AUDIT" | "SECURITY_GROUPS_USAGE_AUDIT" | "NETWORK_FIREWALL" | "DNS_FIREWALL" | "THIRD_PARTY_FIREWALL" | "IMPORT_NETWORK_FIREWALL")
|
|
795
|
+
attr_accessor remediation_enabled: bool
|
|
796
|
+
attr_accessor delete_unused_fm_managed_resources: bool
|
|
797
|
+
attr_accessor policy_status: ("ACTIVE" | "OUT_OF_ADMIN_SCOPE")
|
|
798
|
+
SENSITIVE: []
|
|
799
|
+
end
|
|
800
|
+
|
|
801
|
+
class PolicyTypeScope
|
|
802
|
+
attr_accessor policy_types: ::Array[("WAF" | "WAFV2" | "SHIELD_ADVANCED" | "SECURITY_GROUPS_COMMON" | "SECURITY_GROUPS_CONTENT_AUDIT" | "SECURITY_GROUPS_USAGE_AUDIT" | "NETWORK_FIREWALL" | "DNS_FIREWALL" | "THIRD_PARTY_FIREWALL" | "IMPORT_NETWORK_FIREWALL")]
|
|
803
|
+
attr_accessor all_policy_types_enabled: bool
|
|
804
|
+
SENSITIVE: []
|
|
805
|
+
end
|
|
806
|
+
|
|
807
|
+
class PossibleRemediationAction
|
|
808
|
+
attr_accessor description: ::String
|
|
809
|
+
attr_accessor ordered_remediation_actions: ::Array[Types::RemediationActionWithOrder]
|
|
810
|
+
attr_accessor is_default_action: bool
|
|
811
|
+
SENSITIVE: []
|
|
812
|
+
end
|
|
813
|
+
|
|
814
|
+
class PossibleRemediationActions
|
|
815
|
+
attr_accessor description: ::String
|
|
816
|
+
attr_accessor actions: ::Array[Types::PossibleRemediationAction]
|
|
817
|
+
SENSITIVE: []
|
|
818
|
+
end
|
|
819
|
+
|
|
820
|
+
class ProtocolsListData
|
|
821
|
+
attr_accessor list_id: ::String
|
|
822
|
+
attr_accessor list_name: ::String
|
|
823
|
+
attr_accessor list_update_token: ::String
|
|
824
|
+
attr_accessor create_time: ::Time
|
|
825
|
+
attr_accessor last_update_time: ::Time
|
|
826
|
+
attr_accessor protocols_list: ::Array[::String]
|
|
827
|
+
attr_accessor previous_protocols_list: ::Hash[::String, ::Array[::String]]
|
|
828
|
+
SENSITIVE: []
|
|
829
|
+
end
|
|
830
|
+
|
|
831
|
+
class ProtocolsListDataSummary
|
|
832
|
+
attr_accessor list_arn: ::String
|
|
833
|
+
attr_accessor list_id: ::String
|
|
834
|
+
attr_accessor list_name: ::String
|
|
835
|
+
attr_accessor protocols_list: ::Array[::String]
|
|
836
|
+
SENSITIVE: []
|
|
837
|
+
end
|
|
838
|
+
|
|
839
|
+
class PutAdminAccountRequest
|
|
840
|
+
attr_accessor admin_account: ::String
|
|
841
|
+
attr_accessor admin_scope: Types::AdminScope
|
|
842
|
+
SENSITIVE: []
|
|
843
|
+
end
|
|
844
|
+
|
|
845
|
+
class PutAppsListRequest
|
|
846
|
+
attr_accessor apps_list: Types::AppsListData
|
|
847
|
+
attr_accessor tag_list: ::Array[Types::Tag]
|
|
848
|
+
SENSITIVE: []
|
|
849
|
+
end
|
|
850
|
+
|
|
851
|
+
class PutAppsListResponse
|
|
852
|
+
attr_accessor apps_list: Types::AppsListData
|
|
853
|
+
attr_accessor apps_list_arn: ::String
|
|
854
|
+
SENSITIVE: []
|
|
855
|
+
end
|
|
856
|
+
|
|
857
|
+
class PutNotificationChannelRequest
|
|
858
|
+
attr_accessor sns_topic_arn: ::String
|
|
859
|
+
attr_accessor sns_role_name: ::String
|
|
860
|
+
SENSITIVE: []
|
|
861
|
+
end
|
|
862
|
+
|
|
863
|
+
class PutPolicyRequest
|
|
864
|
+
attr_accessor policy: Types::Policy
|
|
865
|
+
attr_accessor tag_list: ::Array[Types::Tag]
|
|
866
|
+
SENSITIVE: []
|
|
867
|
+
end
|
|
868
|
+
|
|
869
|
+
class PutPolicyResponse
|
|
870
|
+
attr_accessor policy: Types::Policy
|
|
871
|
+
attr_accessor policy_arn: ::String
|
|
872
|
+
SENSITIVE: []
|
|
873
|
+
end
|
|
874
|
+
|
|
875
|
+
class PutProtocolsListRequest
|
|
876
|
+
attr_accessor protocols_list: Types::ProtocolsListData
|
|
877
|
+
attr_accessor tag_list: ::Array[Types::Tag]
|
|
878
|
+
SENSITIVE: []
|
|
879
|
+
end
|
|
880
|
+
|
|
881
|
+
class PutProtocolsListResponse
|
|
882
|
+
attr_accessor protocols_list: Types::ProtocolsListData
|
|
883
|
+
attr_accessor protocols_list_arn: ::String
|
|
884
|
+
SENSITIVE: []
|
|
885
|
+
end
|
|
886
|
+
|
|
887
|
+
class PutResourceSetRequest
|
|
888
|
+
attr_accessor resource_set: Types::ResourceSet
|
|
889
|
+
attr_accessor tag_list: ::Array[Types::Tag]
|
|
890
|
+
SENSITIVE: []
|
|
891
|
+
end
|
|
892
|
+
|
|
893
|
+
class PutResourceSetResponse
|
|
894
|
+
attr_accessor resource_set: Types::ResourceSet
|
|
895
|
+
attr_accessor resource_set_arn: ::String
|
|
896
|
+
SENSITIVE: []
|
|
897
|
+
end
|
|
898
|
+
|
|
899
|
+
class RegionScope
|
|
900
|
+
attr_accessor regions: ::Array[::String]
|
|
901
|
+
attr_accessor all_regions_enabled: bool
|
|
902
|
+
SENSITIVE: []
|
|
903
|
+
end
|
|
904
|
+
|
|
905
|
+
class RemediationAction
|
|
906
|
+
attr_accessor description: ::String
|
|
907
|
+
attr_accessor ec2_create_route_action: Types::EC2CreateRouteAction
|
|
908
|
+
attr_accessor ec2_replace_route_action: Types::EC2ReplaceRouteAction
|
|
909
|
+
attr_accessor ec2_delete_route_action: Types::EC2DeleteRouteAction
|
|
910
|
+
attr_accessor ec2_copy_route_table_action: Types::EC2CopyRouteTableAction
|
|
911
|
+
attr_accessor ec2_replace_route_table_association_action: Types::EC2ReplaceRouteTableAssociationAction
|
|
912
|
+
attr_accessor ec2_associate_route_table_action: Types::EC2AssociateRouteTableAction
|
|
913
|
+
attr_accessor ec2_create_route_table_action: Types::EC2CreateRouteTableAction
|
|
914
|
+
attr_accessor fms_policy_update_firewall_creation_config_action: Types::FMSPolicyUpdateFirewallCreationConfigAction
|
|
915
|
+
SENSITIVE: []
|
|
916
|
+
end
|
|
917
|
+
|
|
918
|
+
class RemediationActionWithOrder
|
|
919
|
+
attr_accessor remediation_action: Types::RemediationAction
|
|
920
|
+
attr_accessor order: ::Integer
|
|
921
|
+
SENSITIVE: []
|
|
922
|
+
end
|
|
923
|
+
|
|
924
|
+
class Resource
|
|
925
|
+
attr_accessor uri: ::String
|
|
926
|
+
attr_accessor account_id: ::String
|
|
927
|
+
SENSITIVE: []
|
|
928
|
+
end
|
|
929
|
+
|
|
930
|
+
class ResourceNotFoundException
|
|
931
|
+
attr_accessor message: ::String
|
|
932
|
+
SENSITIVE: []
|
|
933
|
+
end
|
|
934
|
+
|
|
935
|
+
class ResourceSet
|
|
936
|
+
attr_accessor id: ::String
|
|
937
|
+
attr_accessor name: ::String
|
|
938
|
+
attr_accessor description: ::String
|
|
939
|
+
attr_accessor update_token: ::String
|
|
940
|
+
attr_accessor resource_type_list: ::Array[::String]
|
|
941
|
+
attr_accessor last_update_time: ::Time
|
|
942
|
+
attr_accessor resource_set_status: ("ACTIVE" | "OUT_OF_ADMIN_SCOPE")
|
|
943
|
+
SENSITIVE: []
|
|
944
|
+
end
|
|
945
|
+
|
|
946
|
+
class ResourceSetSummary
|
|
947
|
+
attr_accessor id: ::String
|
|
948
|
+
attr_accessor name: ::String
|
|
949
|
+
attr_accessor description: ::String
|
|
950
|
+
attr_accessor last_update_time: ::Time
|
|
951
|
+
attr_accessor resource_set_status: ("ACTIVE" | "OUT_OF_ADMIN_SCOPE")
|
|
952
|
+
SENSITIVE: []
|
|
953
|
+
end
|
|
954
|
+
|
|
955
|
+
class ResourceTag
|
|
956
|
+
attr_accessor key: ::String
|
|
957
|
+
attr_accessor value: ::String
|
|
958
|
+
SENSITIVE: []
|
|
959
|
+
end
|
|
960
|
+
|
|
961
|
+
class ResourceViolation
|
|
962
|
+
attr_accessor aws_vpc_security_group_violation: Types::AwsVPCSecurityGroupViolation
|
|
963
|
+
attr_accessor aws_ec2_network_interface_violation: Types::AwsEc2NetworkInterfaceViolation
|
|
964
|
+
attr_accessor aws_ec2_instance_violation: Types::AwsEc2InstanceViolation
|
|
965
|
+
attr_accessor network_firewall_missing_firewall_violation: Types::NetworkFirewallMissingFirewallViolation
|
|
966
|
+
attr_accessor network_firewall_missing_subnet_violation: Types::NetworkFirewallMissingSubnetViolation
|
|
967
|
+
attr_accessor network_firewall_missing_expected_rt_violation: Types::NetworkFirewallMissingExpectedRTViolation
|
|
968
|
+
attr_accessor network_firewall_policy_modified_violation: Types::NetworkFirewallPolicyModifiedViolation
|
|
969
|
+
attr_accessor network_firewall_internet_traffic_not_inspected_violation: Types::NetworkFirewallInternetTrafficNotInspectedViolation
|
|
970
|
+
attr_accessor network_firewall_invalid_route_configuration_violation: Types::NetworkFirewallInvalidRouteConfigurationViolation
|
|
971
|
+
attr_accessor network_firewall_black_hole_route_detected_violation: Types::NetworkFirewallBlackHoleRouteDetectedViolation
|
|
972
|
+
attr_accessor network_firewall_unexpected_firewall_routes_violation: Types::NetworkFirewallUnexpectedFirewallRoutesViolation
|
|
973
|
+
attr_accessor network_firewall_unexpected_gateway_routes_violation: Types::NetworkFirewallUnexpectedGatewayRoutesViolation
|
|
974
|
+
attr_accessor network_firewall_missing_expected_routes_violation: Types::NetworkFirewallMissingExpectedRoutesViolation
|
|
975
|
+
attr_accessor dns_rule_group_priority_conflict_violation: Types::DnsRuleGroupPriorityConflictViolation
|
|
976
|
+
attr_accessor dns_duplicate_rule_group_violation: Types::DnsDuplicateRuleGroupViolation
|
|
977
|
+
attr_accessor dns_rule_group_limit_exceeded_violation: Types::DnsRuleGroupLimitExceededViolation
|
|
978
|
+
attr_accessor possible_remediation_actions: Types::PossibleRemediationActions
|
|
979
|
+
attr_accessor firewall_subnet_is_out_of_scope_violation: Types::FirewallSubnetIsOutOfScopeViolation
|
|
980
|
+
attr_accessor route_has_out_of_scope_endpoint_violation: Types::RouteHasOutOfScopeEndpointViolation
|
|
981
|
+
attr_accessor third_party_firewall_missing_firewall_violation: Types::ThirdPartyFirewallMissingFirewallViolation
|
|
982
|
+
attr_accessor third_party_firewall_missing_subnet_violation: Types::ThirdPartyFirewallMissingSubnetViolation
|
|
983
|
+
attr_accessor third_party_firewall_missing_expected_route_table_violation: Types::ThirdPartyFirewallMissingExpectedRouteTableViolation
|
|
984
|
+
attr_accessor firewall_subnet_missing_vpc_endpoint_violation: Types::FirewallSubnetMissingVPCEndpointViolation
|
|
985
|
+
SENSITIVE: []
|
|
986
|
+
end
|
|
987
|
+
|
|
988
|
+
class Route
|
|
989
|
+
attr_accessor destination_type: ("IPV4" | "IPV6" | "PREFIX_LIST")
|
|
990
|
+
attr_accessor target_type: ("GATEWAY" | "CARRIER_GATEWAY" | "INSTANCE" | "LOCAL_GATEWAY" | "NAT_GATEWAY" | "NETWORK_INTERFACE" | "VPC_ENDPOINT" | "VPC_PEERING_CONNECTION" | "EGRESS_ONLY_INTERNET_GATEWAY" | "TRANSIT_GATEWAY")
|
|
991
|
+
attr_accessor destination: ::String
|
|
992
|
+
attr_accessor target: ::String
|
|
993
|
+
SENSITIVE: []
|
|
994
|
+
end
|
|
995
|
+
|
|
996
|
+
class RouteHasOutOfScopeEndpointViolation
|
|
997
|
+
attr_accessor subnet_id: ::String
|
|
998
|
+
attr_accessor vpc_id: ::String
|
|
999
|
+
attr_accessor route_table_id: ::String
|
|
1000
|
+
attr_accessor violating_routes: ::Array[Types::Route]
|
|
1001
|
+
attr_accessor subnet_availability_zone: ::String
|
|
1002
|
+
attr_accessor subnet_availability_zone_id: ::String
|
|
1003
|
+
attr_accessor current_firewall_subnet_route_table: ::String
|
|
1004
|
+
attr_accessor firewall_subnet_id: ::String
|
|
1005
|
+
attr_accessor firewall_subnet_routes: ::Array[Types::Route]
|
|
1006
|
+
attr_accessor internet_gateway_id: ::String
|
|
1007
|
+
attr_accessor current_internet_gateway_route_table: ::String
|
|
1008
|
+
attr_accessor internet_gateway_routes: ::Array[Types::Route]
|
|
1009
|
+
SENSITIVE: []
|
|
1010
|
+
end
|
|
1011
|
+
|
|
1012
|
+
class SecurityGroupRemediationAction
|
|
1013
|
+
attr_accessor remediation_action_type: ("REMOVE" | "MODIFY")
|
|
1014
|
+
attr_accessor description: ::String
|
|
1015
|
+
attr_accessor remediation_result: Types::SecurityGroupRuleDescription
|
|
1016
|
+
attr_accessor is_default_action: bool
|
|
1017
|
+
SENSITIVE: []
|
|
1018
|
+
end
|
|
1019
|
+
|
|
1020
|
+
class SecurityGroupRuleDescription
|
|
1021
|
+
attr_accessor ipv4_range: ::String
|
|
1022
|
+
attr_accessor ipv6_range: ::String
|
|
1023
|
+
attr_accessor prefix_list_id: ::String
|
|
1024
|
+
attr_accessor protocol: ::String
|
|
1025
|
+
attr_accessor from_port: ::Integer
|
|
1026
|
+
attr_accessor to_port: ::Integer
|
|
1027
|
+
SENSITIVE: []
|
|
1028
|
+
end
|
|
1029
|
+
|
|
1030
|
+
class SecurityServicePolicyData
|
|
1031
|
+
attr_accessor type: ("WAF" | "WAFV2" | "SHIELD_ADVANCED" | "SECURITY_GROUPS_COMMON" | "SECURITY_GROUPS_CONTENT_AUDIT" | "SECURITY_GROUPS_USAGE_AUDIT" | "NETWORK_FIREWALL" | "DNS_FIREWALL" | "THIRD_PARTY_FIREWALL" | "IMPORT_NETWORK_FIREWALL")
|
|
1032
|
+
attr_accessor managed_service_data: ::String
|
|
1033
|
+
attr_accessor policy_option: Types::PolicyOption
|
|
1034
|
+
SENSITIVE: []
|
|
1035
|
+
end
|
|
1036
|
+
|
|
1037
|
+
class StatefulEngineOptions
|
|
1038
|
+
attr_accessor rule_order: ("STRICT_ORDER" | "DEFAULT_ACTION_ORDER")
|
|
1039
|
+
SENSITIVE: []
|
|
1040
|
+
end
|
|
1041
|
+
|
|
1042
|
+
class StatefulRuleGroup
|
|
1043
|
+
attr_accessor rule_group_name: ::String
|
|
1044
|
+
attr_accessor resource_id: ::String
|
|
1045
|
+
attr_accessor priority: ::Integer
|
|
1046
|
+
attr_accessor override: Types::NetworkFirewallStatefulRuleGroupOverride
|
|
1047
|
+
SENSITIVE: []
|
|
1048
|
+
end
|
|
1049
|
+
|
|
1050
|
+
class StatelessRuleGroup
|
|
1051
|
+
attr_accessor rule_group_name: ::String
|
|
1052
|
+
attr_accessor resource_id: ::String
|
|
1053
|
+
attr_accessor priority: ::Integer
|
|
1054
|
+
SENSITIVE: []
|
|
1055
|
+
end
|
|
1056
|
+
|
|
1057
|
+
class Tag
|
|
1058
|
+
attr_accessor key: ::String
|
|
1059
|
+
attr_accessor value: ::String
|
|
1060
|
+
SENSITIVE: []
|
|
1061
|
+
end
|
|
1062
|
+
|
|
1063
|
+
class TagResourceRequest
|
|
1064
|
+
attr_accessor resource_arn: ::String
|
|
1065
|
+
attr_accessor tag_list: ::Array[Types::Tag]
|
|
1066
|
+
SENSITIVE: []
|
|
1067
|
+
end
|
|
1068
|
+
|
|
1069
|
+
class TagResourceResponse < Aws::EmptyStructure
|
|
1070
|
+
end
|
|
1071
|
+
|
|
1072
|
+
class ThirdPartyFirewallFirewallPolicy
|
|
1073
|
+
attr_accessor firewall_policy_id: ::String
|
|
1074
|
+
attr_accessor firewall_policy_name: ::String
|
|
1075
|
+
SENSITIVE: []
|
|
1076
|
+
end
|
|
1077
|
+
|
|
1078
|
+
class ThirdPartyFirewallMissingExpectedRouteTableViolation
|
|
1079
|
+
attr_accessor violation_target: ::String
|
|
1080
|
+
attr_accessor vpc: ::String
|
|
1081
|
+
attr_accessor availability_zone: ::String
|
|
1082
|
+
attr_accessor current_route_table: ::String
|
|
1083
|
+
attr_accessor expected_route_table: ::String
|
|
1084
|
+
SENSITIVE: []
|
|
1085
|
+
end
|
|
1086
|
+
|
|
1087
|
+
class ThirdPartyFirewallMissingFirewallViolation
|
|
1088
|
+
attr_accessor violation_target: ::String
|
|
1089
|
+
attr_accessor vpc: ::String
|
|
1090
|
+
attr_accessor availability_zone: ::String
|
|
1091
|
+
attr_accessor target_violation_reason: ::String
|
|
1092
|
+
SENSITIVE: []
|
|
1093
|
+
end
|
|
1094
|
+
|
|
1095
|
+
class ThirdPartyFirewallMissingSubnetViolation
|
|
1096
|
+
attr_accessor violation_target: ::String
|
|
1097
|
+
attr_accessor vpc: ::String
|
|
1098
|
+
attr_accessor availability_zone: ::String
|
|
1099
|
+
attr_accessor target_violation_reason: ::String
|
|
1100
|
+
SENSITIVE: []
|
|
1101
|
+
end
|
|
1102
|
+
|
|
1103
|
+
class ThirdPartyFirewallPolicy
|
|
1104
|
+
attr_accessor firewall_deployment_model: ("CENTRALIZED" | "DISTRIBUTED")
|
|
1105
|
+
SENSITIVE: []
|
|
1106
|
+
end
|
|
1107
|
+
|
|
1108
|
+
class UntagResourceRequest
|
|
1109
|
+
attr_accessor resource_arn: ::String
|
|
1110
|
+
attr_accessor tag_keys: ::Array[::String]
|
|
1111
|
+
SENSITIVE: []
|
|
1112
|
+
end
|
|
1113
|
+
|
|
1114
|
+
class UntagResourceResponse < Aws::EmptyStructure
|
|
1115
|
+
end
|
|
1116
|
+
|
|
1117
|
+
class ViolationDetail
|
|
1118
|
+
attr_accessor policy_id: ::String
|
|
1119
|
+
attr_accessor member_account: ::String
|
|
1120
|
+
attr_accessor resource_id: ::String
|
|
1121
|
+
attr_accessor resource_type: ::String
|
|
1122
|
+
attr_accessor resource_violations: ::Array[Types::ResourceViolation]
|
|
1123
|
+
attr_accessor resource_tags: ::Array[Types::Tag]
|
|
1124
|
+
attr_accessor resource_description: ::String
|
|
1125
|
+
SENSITIVE: []
|
|
1126
|
+
end
|
|
1127
|
+
end
|
|
1128
|
+
end
|